QuasarRAT - The Best Windows RAT? - Remote Administration Tool for Windows
ฝัง
- เผยแพร่เมื่อ 28 มิ.ย. 2024
- Hey, guys HackerSploit here, back again with another video. In this video, we will be looking at QuasarRAT a Remote Administration Tool for Windows.
QuasarRAT: github.com/quasar/QuasarRAT
Features:
TCP network stream (IPv4 & IPv6 support)
Fast network serialization (NetSerializer)
Compressed (QuickLZ) & Encrypted (AES-128) communication
Multi-Threaded
UPnP Support
No-Ip.com Support
Visit Website (hidden & visible)
Show Messagebox
Task Manager
File Manager
Startup Manager
Remote Desktop
Remote Webcam
Remote Shell
Download & Execute
Upload & Execute
System Information
Computer Commands (Restart, Shutdown, Standby)
Keylogger (Unicode Support)
Reverse Proxy (SOCKS5)
Password Recovery (Common Browsers and FTP Clients)
Registry Editor
Requirements
.NET Framework 4.0 Client Profile (Download)
Supported Operating Systems (32- and 64-bit)
Windows XP SP3
Windows Server 2003
Windows Vista
Windows Server 2008
Windows 7
Windows Server 2012
Windows 8/8.1
Windows 10
------------------------------------------------------
Pure VPN Affiliate Link:
PureVPN: billing.purevpn.com/aff.php?a...
📗 Get My Courses at $10 Only!
The Complete Deep Web Course 2017:
www.udemy.com/the-complete-de...
I Hope you enjoy/enjoyed the video.
If you have any questions or suggestions feel free to ask them in the comments section or on my social networks as well as my blog.
HackerSploit Website: hsploit.com/
✔️SOCIAL NETWORKS
-------------------------------
Facebook: / hackersploit
Twitter: / hackersploit
Discord: / discord
Kik Username: HackerSploit
Patreon: / hackersploit
--------------------------------
Thanks for watching!
Благодаря за гледането
感谢您观看
Merci d'avoir regardé
Grazie per la visione
Gracias por ver
شكرا للمشاهدة
देखने के लिए धन्यवाद - วิทยาศาสตร์และเทคโนโลยี
bothers you crazy when you realize that the audio is like 5 seconds ahead of the video
fuck you for pointing this out LMAO
I have been searching how to do this for a long time and I finally found a one that is easy to understand, Thank you so much. Keep up the good work! I will be supporting you!
hey, how did you do that? today the repository is updated and it is different
Since you've showcased a few RATs recently, maybe you should do a video on how to detect malware/RATs on your own system. Maybe something such as Glasswire to manually view outgoing/incoming connections or an automated alternative. I think it would be good to see both sides of the same coin. Keep up the good work!
Yes, end-user awareness is a topic that i am very keen on.
most cases AV will pick up a rat... I never seen a rat that was strong enough to get passed AF and FW
HackerSploit
Does it work on Android and iphone mobile...?????
Just a FUD, RAT ...
@@kingtunip6386 Hope you are aware of something called a crypter. It obfuscate the code of the rat making it almost impossible to be detected by anti virus atleast for some time.
Your videos are very good, well explained. Keep up the good work.
Thank you very much, your support is appreciated.
@@HackerSploit what do you mean 15:45 not detected by an antivirus?perhaps windows defender will not detect it but do you mean all antivirusses?
If my FBI agent is watching, I am just curious lol
robloxsbro31 😂
Mmhmmmm -_-
FBI LOL
FBI I had no idea the fbi was subbed lazerbeam
@@ethan4970 oh no, don't arrest me
One of the best E.Hacking channel. Very informative and easy to understand.
Thank you very much.
@@HackerSploit what's the name of the tool u used to download and clone the app
@@lewisolise12 "git" is the tool used.
-"The usage of "u" as a replacement for "you" is a sad thing of the modern generation"- stfu Sam, that was a cringe thing to say
@@sam9216 does it matter?
@@a.yashwanth no, it doesn’t. I’m sorry for that cringe comment I wrote
This is just perfect for my needs. thanks for the video bro
This looks nearly identical to Imminent Monitor 5. Interesting. Either way, great video as always!
Yes, thanks!
you share a name with my dad wow
Thank you for the tutorial. I am in the Security network and such this semester in school. I have been exploiting for a while and I love learning for educational purpose only. My classmates are amazed by simple DDoS attacks but I would like to bring more information.
same this coment feels like i wrtten it
Heyy, very nice tutorial and very informative from the A to Z ;)
Just one question, if you want to do it over the network, you need to port forward on the side of the server right?
BUT IT ALWAYS notify , example : i use file explorer and download something from client, A NOTIFICATION POPS UP AND SAYS QUASAR CLIENT STARTED UPLOAD FROM THE EXE FILE ITSELF WHICH WE BUILT
Thank you! I had 2 computers I wanted to use locally bc its at my dads house and im always at my moms so its much easier to send files from there onto my computer! Thank you very much sir
for me it doesnt work
while i didnt understand fully, you are great at what you do man
Truly amazing! I️ love your TH-cam channel! My school gives no opportunity to teach us anything beyond PowerPoint 😂! so thanks for the time and effort that you put in to all of your videos!
Thank you very much, I am glad you enjoy the videos.
Then its time to change your school.
@برامج لكل المنصات What
Very nice
download tutorial starts at 3:17
Respect
thicc respect
@@urmom-yv7ps thiccccc respect
fav pen-testing channel ur amazing btw what's the version of the rat ur using
Thank you for these videos!
Please make more and more and more and more 10000000 times
I know, it's been several years, but It looks like this RAT tool hasn't been maintained in a long time.
Interesting video, I really like it.
who asked
@@SajmonExp It's a fact, you don't have to be an asshole...
@@SajmonExp you just did, "who asked" is a question
These are fantastic videos, only comment I have is that there is no such word as "irregardless". It's only regardless.
actually if you search it, it IS a word
@@oh_tassos It's a stupid word if you ask me. It makes the word double negative and makes you think it's the opposite of "regardless" (which honestly it should be).
Then again, this isn't the only stupid thing English does. Took me a while to get that "all but" means "almost" and it's not the same as saying "everything but". Although it can also mean that too, which is even more stupid.
this guy is the best ethical hacking teacher
This was so helpful. Thanks.
Great vid. I don't have the client.bin file. Any suggestions?
Hey, the GitHub repository doesn't have the Files you showed in the video, so would you please update it, 'cause I can't really figure out how I setup the RAT.
yeah i didnt find too
@@injamamakib2333 they are not there but it here is a working guide:th-cam.com/video/xHBpkvIBlKA/w-d-xo.html
honestly I am not sure how smart it is to wildly promote use of rats,because they can be easily malociously used. either way,you'd need to compile quesar first,server and client,ofc ur not gonna be using a closed source rat,because it may just be a client on your own computer. Download Visual Studios,update liberaries,and select the release option for the build.
I've done everything exactly like you have to every detail and it will not find the other PC even tried on my own labs here in my home and still will not connect any idea why not says listining and will not connect
Is the meterpreter reverse tcp a remote administration tool as well? Just a cli interface?
Remote Administration Tool or Remote Access Trojan? I think term choice should reflect usage. I like AndroRAT. Also, the reply just before mine is correct, it's pronounced kway-zar.... and nice tut.
It is called a R.A.T. - Remote Administration Tool, now, if you want to put it into a trojan's payload, you can, but it itself is not one... As it does not pretend to be something else, just hide itself...
over00lord Unknown true but all you have to do is bind it to an innocuous app ... it's like the soldier and the innocuous app is like the horse... so when you put the soldier in the horse the soldier and horse together as a whole become the Trojan... so you are correct, but if using the soldier this was makes him a Trojan Horse than my linguistic convention it's how you use your soldiers that decides whether you call them Trojans or just solders... so I feel I'm not wrong. And if you want to say that the soldier is never truly one with the horse and can serve your kingdom with or without the horse than sure you wouldn't be wrong and if you proceeded to make the point that thusly the soldier is still a soldier in or out of the horse you'd still be correct, but if you say that we should thusly always simply refer to him as a soldier and never a Trojan because the soldier is just a soldier in or out of the horse, and that the horse is just a wooden horse with or without a soldier in it than technically you'd not be wrong and thusly technically only the combination of the soldier and the horse together are the Trojan is true, but I'd argue that that constitutes usage and therefore usage of either the horse or the soldier as a Trojan should be called a Trojan while a horse all on his own should be called a horse and a soldier on his own should be called a soldier hence we'd be arguing the same point. So I stand by my statement, usage of such tools should dictate language. I do understand the need (even for black hats) to maintain the integrity of the legitimacy of the tools they use, because remote access (the cloud since way before the term 'cloud computing' lol) is a totally legitimate tool as is password integrity checkers and password secured systems analysis tools (password checkers) have a legitimate use as do all pen testing tools and browsers etc... and it's not just black and white hats it's a round table with black and white hats sitting opposite each other (usually) AND 50 shades of grey sitting between them on either side and all parties at the table have a vested interest in making sure that the legitimacy of these tools are maintained. So I do see a need to point out that a remote access tool is just a remote access tool if it's not employed as anything else... but you do understand that these tools are brought to the table by everyone sitting there right... some great security tools where made by hackers and some awesome hacking tools where made by security professionals, and some really equally useful tools where created by grey hats, and obviously hackers TEND to create tools that are more suitable for hacking while security professionals TEND to create tools that are more geared toward security uses, and grey hats TEND to be the ones to adapt the tools to fit the needs of the other side of the table than they where originally designed for... but every combination of possible events happens... as it happens quasar is a well rounded tool that the hackers tend to use more than the business professionals wanting to connect to their work devices from home... just saying. Sorry but that tool currently has a bit of a darker edge to it. Not that you couldn't use it to remotely administer your own system, and not that many don't, just that many more use it to perform remote administration on systems that are not their own.
Grant Imahara that is a huge comment
It's the same thing
Kyle Weeb that's what I'm saying... the only difference between a remote administration tool and a remote access trojan is usage... how you use is is the difference. But unused, it's the same thing.
Dear my FBI Agent,
I am sincerely sorry for watching this whole entire video, but the reason I am doing so because I am curious. And I am sure this is why you are seeing everything I do as well, Sorry
Sincerely,
Kenny
Don't take this seriously, just a joke.
same
@@rowanmason6437 lmfao
I know im supper late on this video but i can make a build because it says could not locate "client.bin"file. It should be in the same directory as Quasar... what should i do and also you skipped a part and said i have it all set up what did we miss as far as that goes?
شكرا على المشاهدة , keep going 👍
And btw, when i clone it with GitHub Desktop i dont have any build batch files.
Please help me because i want to use this!
same issue here
@@zacsua2057, i did go to the github page and click the downloads button and that worked.
check releases! :)
have you got discord?
How about a series where you perform and explain a full rat attack (all stages explained). It would be really cool to see a walk through of an entire attack. The reason I ask is because I have no idea of how to pull of some of the things needed to exploit Someone by rat.
I am uploading a CTF video today, and i will definitely maker a video on a RAT attack.
@@HackerSploit did u ever get around to doing a RAT attack vid? I have been going through your videos and haven't noticed one. Would really appreciate one!
@@HackerSploit its been 5 years
@@bikerboys1106 lmao
@@bikerboys1106 6 now...
wow muchas gracias por el video estoy aprendiendo mucho saludos desde México
Finally someone who knows there stuff
Their*
Im sorry I just had too.
There aren't any Windows Batch Files after extraction :(
Help please
use .sln file to build the project in visual studio and you will be good to go
@@aoulakh16 Could you give a little more insight on how
or where it will be
@@LongshotRGB Download Visual Studio, open the file, and click the button that looks like a play button, done
@@CozySeeker291 Lol that was 2 months ago
@@LongshotRGB Better late than never
For me there are not batch files theres just the visual studio file
found a solution go to release on the download page and download the source code of the latest version and that work ! your'e welcome !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
@@jayyyh-wz9kp what???
@@jayyyh-wz9kp thanks
your voice just makes me wanna listen more
Hi excellent videos, a question, it works just outside the Local Network?
did you ever figure this out?
yeah i download it and extract it i dont see any build files pls help
me neither, if you have got a solution pls reply
When I open the created file on my computer it works. But when I open it on a different computer it does not work, Please Help.
have you solved the problem? I have the same issue here
how
guys goto whatismyipaddress.com/ it'll show u your publick ip and to canyouseeme.org/ (here change 80 to ur port and if it's sucess u can send it to other people but if it's not sucess u should portforward
@@LsG1337 I open a port in my router but i have this problem too.
Did you notice a significant or notable increase in CPU usage of the target computer while using Quasar?
I know a lot less about this stuff but I guess I'm more into computer then most people and I would find it suspect to have it in my app data but not in my system folder ;) Sounds like your logic would be able to fool me :P
Can you disable lights on the targets webcam?
That is hardware encoded, the lights on a webcam are I/O related, and were put in place to notify the user that the webcam is on( for safety and accessibility), so no, that is a hardware I/O related issue.
Pota MC you're weird my dude..
Pota MC lol creap
HackerSploit NanoCore have the ability to disable the webcam light. ;)
Well I was just going to troll a friend Jesus dude
I cant install this, since they removed the .bat files. I dont know how to build it. Please help.
Compile it with visual studio
How? I have visual studio, I just dont know how to.
@@zackstocke4092 juste open quasartrat.snl with visualiser studio and run it like a test ans it's done
@Crazy Paradox I dont know how to do either of those, but from what I've seen, you need the 2015 community edition? I have the regular one, and there is no 'Open project' option, only 'open file' and Open folder'.
@Crazy Paradox First, are we talking about Visual Code Studio? You keep writing visualizer studio, so I'm not sure if you're talking about as different thing than Visual Code Studio. Second, if you are talking about Visual Code Studio, then I'm pretty new to it, so I don't know how to do any of those. I do know how to do some things with git bash, but not anything related to .sln files.
Thx
I installed this a built a client as a exe install of the latest javascript. I combined the two exe files and used all the info for the legit installer of java via cmd. I tried testing it out on a virtual machine of fine and I have two problems.
1.) My antivrius on my virtual machine detect the file as a virus when shared
2.) It says that window doesn't uave permission to access the file.
Under the host ip I used my public ip address, port forwarded to the correct port and password and it doesn't work with or without the use of my VPN. Any idea what the issue could be?
Interesting tool. I'll have to try it out in my lab.
BUT IT ALWAYS notify , example : i use file explorer and download something from client, A NOTIFICATION POPS UP AND SAYS QUASAR CLIENT STARTED UPLOAD FROM THE EXE FILE ITSELF WHICH WE BUILT
i download quasartat with that same link and i have diferent files on my folder... the bat files are missing too...
Ratted
is it necessary to have a fixed ip?
No, that's why you can use no-ip.com
or duckdns.org
thanks for the replies guys!
kaiserzico As others have said, you can use a service which redirects to your IP, *BUT* if you want to use your actual IP, or if you just have a website pointing at a static IP that is not updated, then when your IP changes (if you have a Dynamic IP like most people), you will no longer be able to connect... :/
So if I want to remote access an iphone, so how to do that?
excuses maar heb ene van jou gekocht ben jou echt dankbaar master RESPECT YOUR CODE greets from the Dutch
This is one of the best E Hacking channel, Very easy to understand.... Pls @HackerSploit what is the best crypter for Quasar Rat??
For future reference, make sure to mention using a crypter so windows doesn’t automatically detect it
do you know a good crypter?
Now time to use this at school lOL.
@Kamui or just bring your own computer to school
@Kamui install a keylogger first then
@dot0nion lol dot onion
@dot0nion yep
@dot0nion should i worry that i downloaded a rat and it wont open
This tutorial is great. When you said "Dont be confused" I was actually pretty confused to be honest🤣🤣🤣🤣
What if the user deletes the rat will the computer still be infected or would we have to create something like a back door
Does this work over different wifi networks?
use a domain, (like no-ip).com
@@manypixels4345 can you teach me how to use it on different wifi!?
I can’t build it because client.bin is missing
I have disabled my anti-virus
Recompile lol
Just install the quasar on a vm
I use this myself and its quite good.
Remote webcam is no longer there? Any reason for this?
Make A full Hacking ADVANCE course
loser rofl
@@dankmemes7067 your a tool
You can't get copyright striked for breaking a different law 😂
Suppose the target computer(in which RAT is already there) uses internet which passes through a proxy server.Will QASAR still work?
nice thank you great tutorial
*please bro make paid hacking course (big hacking course)*
yeah a price on knowledge! Fuck yeah dude
go on hackforums
Look up revenge rat.
im using it but idk how to use it lol
So which file do u need to send to ur target to get them rat?
I tried it on my other laptop but the device didn't show up on quasar. Is that something i need to worry about ? I think i should. The only difference i made is, i used no-ip host name instead of my own ip address and while port forwarding i used a port that i used in quasar rat. I don't think that's the reason why isn't the device showing up. Please help.
I start to learn about this .
Hi Sir. I have downloaded a Quaser RAT using git clone but unable to find release and debug batch files. Please help me.
How do I find the file in the “SubDir”
How do you build the Release folder withh the Visual Studio solution?
is it necessary to have port forwarding, like with Njrat
When i download the forlder and open it i don't have the same as you i don't have the buildrelease folder so how i can fix that please ?
Bro Do we have to run the rat on admistrator privilages or simple run is enough?
Do I need to use my public IP in client builder if I want to access a computer over the internet?
I opened the port, I listen to the port. I used no-ip, but I can not get control on my remote computer. The firewall is disabled and even the file is added to the exceptions. What can be wrong?
Hi HE can i use CMD prompt or what program is that you are using instead of the windows command prompt?
how does port forwarding works? because i tried to rat my other pc and it didnt find out.
what do you use to record?
There is no build-debug or build-release batch in the folder...
yeah exactly
14:32 what kind of file extension is it?
I imagine it could be run by autorun ability and a USB stick right?
I'm not into hacking really....
it is working on local intranet connection not on different ip for that what should i do pls help? am i missing something or need extra skills?
Hello great video, but when start remote control I have a message that says must wait client sends a list with available display do you know a solution or another RAT to use, even in Kali it's ok also, thanks
Thank you so much alexis... I request you to upload python videos as well which is incomplete..
I also suggest you to please make a video of powershell as well...
Ok, will do.
Thank you so much buddy...
I tried running itt on a vm, but it said not compatible for the operating system
Keep doing Good work God bless you
is a feature that auto spreads automatically in the web tunnels that connect all the computers possible?
This is sick thx you so much
I cant run It whenever I try it just brings up the code what should I be running it on feel free to answer whenever :D
I am going to unplug my internet!!!! hehehe good Video!!! goosh! i learnt so much! thumbs up and subbed!!!
So With The Visit Website You Can Select Hidden And When I try to launch a website hidden i cant see it at all
When I execute the client on the host PC it works perfectly, but when I copy the client to my other PC it just doesn't connect. The host PC is a laptop with Windows 10 and the "victim" is a desktop PC with Windows 11. My laptop uses WiFi and the other one doesn't. I was using adguard's DNS but I tried disabling it and nothing. Please someone help!
Uo
In general how would you actually transfer that generated file, or any malicious exploit/payload for that matter to your target?
server links easy to spread if you know what your doing
Anonymizer Pro if you've built let's say a pdf which contains payload inside it, how do you get that transferred to a target? I know you could try social engineer it or email it, but what other ways are there...
It's all well and good testing it locally on your own labs, but how do you do it externally? For a real blackbox pentest?
Well you don't because it does not work, Defender reckognize it as a malicios and block it out.
When I run the build-release file all I see in bin/release file is two files named: client.bin and client. Please help?
if u r having a similar issue then rather than cloning and running it through release method, simply go to release tab in github and download the latest release.zip file and the application is simple there. I am writing this for the first time ever that someone might find it useful if u do please let me know. This gesture from others have helped me so much. Have a good day!!!!
rat lmao
@@azkymohamed123 love u bro u saved my live #nohomo
What were you using to do the commands on windows?
Warhawk git bash
why do i get a pop up that says quasar rat backdoor pop up from the antivirus tells me to restart my pc???
hello, i have a problem if i close the quasar rat i lost the client
It didnt create a client.bin file, im new to this is there a way to fix this?
Wow! This is so powerful.
Orcus >
anyone know how to access the terminal hes using
Great tutorial. Thank you. BTW it's pronounced Kway-Zar-Rat
Thank you, apologies for the incorrect pronunciation, i will make the necessary changed in the future :)
Can they see what your doing on their desktop or is it hidden?
do the victim have to start the bat program when i send it over to his pc? or is it enough that i just place it inside his computer and when he logs inn on the computer then the whole Rat stuff will work automatically?
dred dred lool